Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAAB2368CCAB11EE92572F68775412E6.roa
File: BAAB2368CCAB11EE92572F68775412E6.roa (raw, json)
Hash identifier: wnTZUBusf9WjX7Xd4JtNk2qYvIYCo2gE3CAcC+JK7qI=
Subject key identifier: 1F:54:DE:13:51:DF:31:8F:09:FA:B1:FD:0E:10:52:1D:96:4E:6B:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A6B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAAB2368CCAB11EE92572F68775412E6.roa
Signing time: Fri 16 Feb 2024 09:14:04 +0000
ROA not before: Fri 16 Feb 2024 09:14:01 +0000
ROA not after: Fri 26 Apr 2024 09:14:01 +0000
asID: 9009
IP address blocks: 154.216.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 09:14:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35435 (0x8a6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 09:14:01 2024 GMT
Not After : Apr 26 09:14:01 2024 GMT
Subject: CN=65cf275c-29c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:47:ab:22:af:f7:59:7a:cb:d5:ed:37:fa:cd:
c7:34:d5:cc:70:e4:84:d0:e0:5f:02:57:f6:b4:56:
f9:23:19:a2:2b:2c:f6:2c:24:b9:f2:4c:21:5a:63:
1c:5d:d3:94:2a:6d:51:f9:1e:cd:0c:2f:c1:ef:74:
16:c0:ad:13:65:a4:c6:8c:4c:bb:37:fa:04:ad:c3:
19:1b:1c:8a:5f:0e:bf:9a:3e:2b:52:00:c5:cc:ee:
a4:0b:f0:74:88:57:c3:fe:df:da:33:a1:59:52:2a:
2c:95:5c:b3:22:94:41:4c:5a:bf:9c:a8:4e:28:f3:
bd:73:3d:2c:28:50:2d:52:10:ff:96:d7:0f:b6:0a:
af:81:7e:f6:7d:c8:fe:7a:86:b6:60:e0:75:e9:f4:
d0:b5:af:a4:c0:ff:01:f5:de:9d:07:90:17:94:9d:
e6:a1:f3:ed:d2:1f:c5:5a:92:4e:fc:55:fd:42:da:
ae:c5:a5:39:64:66:26:ee:36:9b:2b:ff:d9:43:38:
59:1e:16:d2:54:49:0c:14:c1:16:e3:66:ba:b3:39:
62:7c:2e:10:83:5a:4a:88:89:16:58:1a:5d:30:c4:
73:45:54:06:12:d2:6c:a6:56:55:a9:55:fa:e2:b4:
74:73:f5:99:69:45:1e:7c:f0:65:6c:a8:85:15:18:
e8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:54:DE:13:51:DF:31:8F:09:FA:B1:FD:0E:10:52:1D:96:4E:6B:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAAB2368CCAB11EE92572F68775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.204.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:af:62:a3:93:31:e5:7c:4e:8b:03:5b:c5:6e:57:a5:b2:c9:
35:03:76:7c:21:f1:7e:9e:1b:ef:24:a6:5b:4b:8f:a5:30:4e:
bb:ed:db:77:a4:bb:61:8a:ef:96:8c:88:ff:9f:03:e3:08:f3:
30:c6:0d:f6:14:d5:c8:2f:ea:80:cf:3e:f2:72:f9:18:9f:4b:
09:64:bf:8c:80:3d:fe:00:42:60:70:9c:67:9c:80:f5:11:5f:
8b:c8:a9:60:2b:71:3e:1f:a2:35:85:ed:05:db:9b:00:50:1c:
13:8e:d5:9a:a8:0b:31:0c:d1:7c:fe:f3:12:66:65:38:61:a1:
a5:d3:1b:b7:0c:4e:69:8b:ef:db:63:33:79:63:95:2e:0f:0e:
a5:e6:7f:42:93:98:a4:a5:51:52:43:e9:f2:cb:bd:20:a8:79:
27:46:10:ec:31:61:29:82:e4:45:7d:35:20:ee:34:75:55:55:
70:fe:df:60:a9:39:b5:b7:d6:f9:c9:23:19:3f:24:3a:a6:59:
a7:6f:29:19:57:c4:c0:b2:27:62:d3:2b:39:65:9d:97:fd:64:
c4:94:77:2c:46:79:93:b6:9f:19:1b:8a:49:01:82:ea:05:38:
0b:ad:17:ec:e1:2b:ec:36:56:6d:c9:2e:2c:cb:3d:cb:db:1e:
0e:1a:05:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:38 2024 by rpki-client on console-fra.rpki-client.org